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Description 

This invention relates t th contr llingofacc ssto 
restricted access data. 

With the v r growing us f electronic communi- 
cation systems, it is necessary to ensure that only au- 
thorised users obtain access to restricted access data. 
For example, a computer may be accessible via the pub- 
lic telephone network by having a modem that links up, 
via the telephone network, with the modem of a user. 
Normally, the decision as to whether to permit access 
to any restricted access data in the computer is deter- 
mined by whether the user transmits, via the modems, 
an approved access code or identity code to the com- 
puter. Such a system is known from Patent Abstracts of 
Japan, vol. 12, no. 138 (P-695)(29S5)(NEC Corpora- 
tion). However, so-called 'hackers' are able by detailed 
knowledge of existing systems or by persistent guessing 
of possible identity codes to gain access to restricted 
access data in computers. 

Accordingly, there is the need for an arrangement 
in which the 'hacker* is unaware that he is being vetted 
as to whether or not he is entitled to access to the re- 
stricted access data. Alternatively, if the "hacker" is 
aware that he is being vetted, he musl be unable to work 
ut how to circumvent the security features. 

According to a first aspect of the present invention, 
a method of enabling a first apparatus to determine 
whether or not a second apparatus should be permitted 
access to restricted access data comprises the step of: 

the first and second apparatuses performing joint 
negotiations to ensure technical compatibility for 
subsequent data transmission between them- 
selves; 

characterized in that the method further comprises 
the steps of: 

the first apparatus monitoring the negotiations to 
detect whether, within the negotiations, there is a 
first indication originating from the second appara- 
tus that the first apparatus recognises as indicating 
that the second apparatus is entitled to access to 
the restricted access data; and 
the first apparatus responding, if it detects the first 
indication, by permitting the second apparatus to 
gain access to the restricted access data when data 
transmission starts after the negotiations have been 
completed. 

If, for example, the first and second apparatuses are 
answer and call modems respectively, then the negoti- 
ations may be the start-up procedure that modems au- 
tomatically perform without any active participation by 
the user whose personal computer, for example, is con- 
nected to the call modem. Because the user is vetted 
automatically during the start-up procedure, the user is 
not aware that his s curity status is b ing ch eked. 
Start-up proc dure negotiations are illustrated in Figur 



4/V.32 of the CCITT Recommendation V.32 r lating to 
"A family of 2-wir , duplex modems operating at data 
signalling rates of up t 9600 bit/s for use on th general 
switched telephone network and on leas d t lephone- 

5 type circuits'. Whilst som of the start-up procedure is 
precisely determined by the V.32 Recommendation, 
there are certain parts of the procedure where the exact 
format of the signals is not precisely laid down. It is dur- 
ing such parts of the procedure that the first indication 

'0 may be included in the start-up negotiations. 

Because the first indication may be included within 
existing standard modem procedures, such as the start- 
up procedure, the present invention may be made com- 
patible with existing modem arrangements. 

»* As it is possible that the first indication might be in- 
cluded in the negotiations by the second apparatus 
purely by chance, it is preferable that the method further 
includes the steps of: 

20 the first apparatus including a second indication in 
the negotiations; 

the second apparatus monitoring the negotiations 
to detect whether, within the negotiations, there is 
the second indication; and 
2S the second apparatus including the first indication 
in the negotiations only if the second apparatus has 
already detected the second indication. 

Because the first indication is generated in re- 
30 sponse to the second indication, it is less likely that the 
second indication will be included in the negotiations 
purely by chance compared with the arrangement 
where the first apparatus merely monitors for the pres- 
ence of the first indication without having triggered the 
35 generation of the first indication by itself producing the 
second indication. Thus, an extra element of security is 
included. 

It is envisaged that the first indication may, for ex- 
ample, identify the second apparatus as belonging to a 

4" group of apparatuses which are permitted access to the 
restricted access data. For example, the first indication 
may inform the first apparatus that the second appara- 
tus is an authorised piece of apparatus belonging to 
company X. However, the first apparatus does not know 

45 exactly which of the possibly many authorised pieces of 
apparatuses belonging to company X the particular sec- 
ond apparatus it is communicating with happens to be. 
Thus, it is preferable that the method further includes 
the step of the second apparatus including a third indi- 

so cation in the negotiations after it has included the first 
indication in the negotiations. The third indication may 
therefore be used to identify more precisely or even 
uniquely the second apparatus For example, the third 
indication could identify the second apparatus as being 

ss the piece of apparatus in the Accounts Department with- 
in company X. This gives an extra piece of knowledge 
to the first apparatus which was previously only aware, 
by virtue of th first indication, that the second apparatus 
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was one of the many authorised apparatuses belonging 
to company X. 

According to a sec nd aspect of the present inv n- 
tion, a communication system comprises: 

a first apparatus for controlling access to restricted 
access data; and 
a second apparatus; 

the first and second apparatuses including respec- 
tive means for performing joint negotiations to 
ensure technical compatibility for subsequent data 
transmission between the first and second appara- 
tuses; 

characterized in that: 

the second apparatus further includes means for 
including in the negotiations a first indication indi- 
cating that the second apparatus is entitled to 
access to the restricted access data; and 
the first apparatus further includes means for mon- 
itoring the negotiations to detect the first indication 
and means for responding to the detection of the 
first indication by permitting the second apparatus 
to gain access to the restricted access data when 
data transmission starts after the negotiations have 
been completed. 

Preferably, the first apparatus further includes 
means for including in the negotiations a second indica- 
tion, and the second apparatus further includes means 
for monitoring the negotiations to detect the second in- 
dication and means for activating the first indication in- 
clusion means in response to the detection of the sec- 
ond indication. 

Preferably, the second apparatus further includes 
means for including in the negotiations a third indication 
after the first indication. 

The invention will now be described by way of non- 
limiting example with reference to the accompanying 
drawings in which: - 

Figure 1 is a diagram illustrating a 1 6-point signal 
structure with non-redundant coding for 9600 bit/s 
and subset A, B.C. D of states used at 4800 bit/s and 
for training; and 

Figure 2 is a diagram illustrating the start-up proce- 
dure negotiations between modems prior to the 
transmission of data between the modems. 

Figures 1 and 2 describe an example of the inven- 
tion in the context of modem to modem communications 
as described in CCITT Recommendation V.32. A full ex- 
planation regarding signal states A.B.C.D as shown in 
Figure 1 is given in section 2.4 of Recommendation V. 
32. 

Also a full explanation regarding the start-up proce- 
dure negotiations is given in section 5 ('Operating Pro- 
cedures') of Recommendation V.32. 

Referral should be made to Recommendation V.32 



_ - . j a full understanding of the known 

start-up procedure specification. 

How v r, in order to assist und rstanding f Figure 
2, th re is reproduced below a table identifying the na- 
5 tur of the individual segments identified in Figure 2. 



ANS Answer tone in accordance with CCITT 

Recommendation V.25. 

AC Signal states ACAC..AC for an even 

'0 number of symbol intervals T; similarly 

with CA.AA and CC. 

MT.NT Round-trip delays observed from an- 

swer and call modems respectively, in- 
cluding 64T±2T modem turn round de- 
'5 lay. 

S,S Signal states ABAB..AB, CDCD..CD. 

TRN Scrambled ones at 4800 bit/s with dibits 

encoded directly to states A. B, C and D 
as defined in section 5.2, c) of CCITT 
so Recommendation V.32. 

R1 , R2, R3 Each a repeated 1 6-bit rate sequence at 
4800 bit/s scrambled and differentially 
encoded as in Table 1 of CCITT Recom- 
mendation V.32. 
25 E A single 16-bit sequence marking and 

following the end of a whole number of 
16-bit rate sequences in R2 and R3. 

B1 Binary ones scrambled and encoded as 

for the subsequent transmission of data. 
30 ECTS Optional special echo canceller training 

sequence. 

This example of the present invention relies on the 
fact that Recommendation V.32 does not specify pre- 
ss cisely all features of the negotiations labelled 1 in Figure 
2 that occur prior to data transmission 2. The negotia- 
tions 1 comprise the start-up procedure between the call 



The negotiations 1 include segments 31 and 32 of 

40 a type called TRN which serve to train the adaptive 
equaliser in the receiving modem and the echo canceller 
in the transmitting modem. As may be seen from Figure 
2, recommendation V.32 specifies that the TRN seg- 
ments must be greater than or equal to 1280 symbol 

4S intervals T. A symbol interval T is the interval associated 
with one of the signal states A.B.C or D as shown in 
Figure 1 . Also, Recommendation V.32 only specifies the 
nature of the first 256 symbols. There is therefore lee- 
way as to exactly which symbols are selected to be the 

so 257th symbol onwards and exactly how many symbols 
there should be, subject to the requirement that the total 
number of symbols associated with segment TRN is 
greater than or equal to 1280. 

Thus, an indication may be given by choosing the 

ss total number of symbols to be a precise number, for ex- 
ample, 2036 symbols. 

Thus, TRN segment 32 may be carefully arranged 
to provide the "first indication' of the pr sent invention. 
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TRN segment 32 has to be present in accordance with 
Recommendation V.32 but it is by choosing its param - 
ters within the possibilities allowed by the Recommen- 
dation that it may be made to serv the purpose of the 
•first indication". This may b don by, as m ntioned s 
above, arranging for TRN segment 32 to have a precise 
symbol length. Alternatively, because the symbols from 
the 257th symbol onwards are unspecified, it may be 
arranged that within the TRN segment 32, after the 
257th symbol, there is a predetermined code of the sym- >o 
bols A,B,C,D which the answer modem identifies as be- 
ing the "first indication". Such a predetermined code of 
symbols may be likened to a gene contained within a 
chromosome. 

Including such a code in TRN segment 32 will re- »5 
quire the scrambler in the call modem to be returned to 
a known condition consistent with the state of the de- 
scrambler in the answer modem. Scrambler/descram- 
blers are discussed in section 4 of Recommendation V. 
32. 20 

Prior to the "first indication" being included in the 
start-up procedure negotiations by the call modem by 
customizing the characteristics of the TRN segment 32, 
the answer modem produces its own customized TRN 
segment 31 , which serves as a "second indication". The « 
call modem monitors for the presence of the customized 
TRN segment 31 and only produces its own customized 
TRN segment 32 if it detects the presence of customized 
TRN segment 31 . If the TRN segment 31 is not correctly 
customized (i.e. no "second indication" is present), then so 
the call modem will produce a TRN segment 32 that 
does not contain the "first indication", e.g. by giving the 
segment a length of 2500 symbols or ensuring that it 
does not contain the predetermined code of the symbols 
A,B,C,D. 35 

The customized TRN segment 31 may therefore be 
likened to a "nod" that is produced by the answer mo- 
dem and which triggers off the production of a "wink" by 
the call modem in the form of the customized TRN seg- 
ment 32. 40 

The customized TRN segment 32 may in practice 
be capable of being produced by a large number of mo- 
dems and thus, when the answer modem receives the 
customized TRN segment 32, it is unable to identify pre- 
cisely which modem it is connected to. « 

Therefore, the call modem produces a "third indica- 
tion" that is used to identify precisely which modem it is. 
The "third indication' is produced by the call modem af- 
ter it has produced the 'first indication". If the first indi- 
cation" is in the form of a predetermined code of signal so 
states A,B,C,D embedded within TRN segment 32, then 
the third indication" may also comprise a predeter- 
mined code of signal states A,B,C,D appearing in the 
TRN segment 32, but after the "first indication". 

In the context of modems, it is envisaged that the ss 
present invention may b implemented by modifying 
standard modems that ar in accordance with Recom- 
mendation V.32. These modems, because they remain 



in accordance with Recommendation V.32, are capable 
of working normally with ut providing a s curity check- 
ing function. How ver, in order to achieve such a secu- 
rity function, the modems will contain additional circuitry 
over and above that required to satisfy Recommenda- 
tion V.32 so as to to provide the first, second and third 
indications and to respond thereto. Thus, additional cir- 
cuitry in the answer modem will, upon detecting the first 
indication, produce a response (e.g. a signal) which per- 
mits the data transmission 2 subsequent to the start-up 
procedure negotiations 1 to involve the restricted ac- 
cess data. In simple terms, the signal produced by the 
answer modem may, for example, activate a switch so 
that a computer database accessed via the answer mo- 
dem permits the. for example, personal computer con- 
nected to the call modem to have access only to non- 
restricted data if the signal produced in response to the 
first indication is not present, but to have access to the 
restricted access data if the signal produced in response 
to the first indication is present. 

It is to be understood that the present invention is 
not restricted to implementation in the context of mo- 
dems. For example, a pair of computers might be con- 
nected by dedicated telephone lines and it is desirable 
that, every time they communicate with one another, 
they check that they are indeed authorised to pass re- 
stricted access data between themselves. Thus, there 
may be hardware or software within the computers 
which, during the negotiations involved prior to data 
transmission, effect the incorporation and detection of 
at least the first indication in the negotations in order to 
ensure security. 

The third indication, instead of being included within 
the TRN segment 32, could, for example, be incorporat- 
ed within additional negotiations which are not shown in 
Figure 2. For example, after the start-up procedure ne- 
gotiations 1, there could be additional negotiations as- 
sociated with error correction and/or data compression 
which occur after the start-up procedure negotiations 1 
but before data transmission 2. The third indication 
could therefore be incorporated in the error correction 
and/or data compression negotiations. 



Claims 

1 . A method of enabling a first apparatus to determine 
whether or not a second apparatus should be per- 
mitted access to restricted access data, the method 
comprising the step of: 

the first and second apparatuses performing 
joint negotiations (1) to ensure technical com- 
patibility for subsequent data transmission (2) 
between themselves; 

characterized in that the method further com- 
prises the steps of: 

the first apparatus monitoring the negotiations 
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(1) to detect whether, within the negotiations, 
there is a tirst indication (32) originating from 
the second apparatus that the first apparatus 
recognises as indicating that the second appa- 
ratus is entitled to access to th restricted 
access data; and 

the first apparatus responding, if it detects the 
first indication (32), by permitting the second 
apparatus to gain access to the restricted 
access data when data transmission (2) starts 
after the negotiations (1 ) have been completed. 

2. A method according to claim 1 , further including the 
steps of: 

the first apparatus including a second indica- 
tion (31) in the negotiations (1); 
the second apparatus monitoring the negotia- 
tions (1 ) to detect whether, within the negotia- 
tions, there is the second indication (31); and 
the second apparatus including the first indica- 
tion (32) in the negotiations only if the second 
apparatus has already detected the second 
indication (31). 

3. A method according to claim 1 or claim 2, further 
including the step of the second apparatus including 
a third indication in the negotiations (1) after it has 
included the first indication (32) in the negotiations. 

4. A method according to claim 3, wherein the first indi- 
cation (32) identifies the second apparatus as 
belonging to a group of apparatuses which are enti- 
tled to access to the restricted access data and the 
third indication identifies the second apparatus 
more precisely than the first indication. 

5. A method according to any one of claims 1 to 4, 
wherein the first and second apparatuses are 
answer and call modems respectively. 

6. A method according to any one of claims 1 to 5, 
wherein the first apparatus responds, if it does not 
detect the first indication (32) within the negotia- 
tions, by permitting the second apparatus to gain 
access only to non-restricted data when data trans- 
mission (2) starts after the negotiations (1) have 
been completed. 

7. A communication system comprising; 

a first apparatus for controlling access to 
restricted access data; and 
a second apparatus; 

the first and second apparatuses including 
respective means for performing joint negotia- 
tions (1) to ensure technical compatibility f r 
subsequent data transmission (2) between the 



first and s cond apparatus s; 
characterized in that: 

the second apparatus further includes means 
for including in the negotiations (1 ) a first indi- 
S cation (32) indicating that the second apparatus 

is entitled to access to the restricted access 
data; and 

the first apparatus further includes means for 
monitoring the negotiations (1) to detect the 

io first indication (32) and means for responding 

to the detection of the first indication (32) by 
permitting the second apparatus to gain access 
to the restricted access data when data trans- 
mission (2) starts after the negotiations (1) 

is have been completed. 

8. A communication system according to claim 7, 
wherein the first apparatus further includes means 
for including in the negotiations (1) a second indi- 

zo cation (31), and the second apparatus further 
includes means for monitoring the negotiations (1) 
to detect the second indication (31 ) and means for 
activating the first indication inclusion means in 
response to the detection of the second indication 

25 (31). 

9. A communication system according to claim 7 or 
claim 8, wherein the second apparatus further 
includes means for including in the negotiations (1) 

30 a third indication after the first indication (32). 

10. A communication system according to claim 9, 
wherein the first indication inclusion means and the 
third indication inclusion means are arranged so 

35 that the first indication (32) identifies the second 
apparatus as belonging to a group of apparatuses 
which are entitled to access to the restricted access 
data and the third indication identifies the second 
apparatus more precisely than the first indication. 

40 

11. A communication system according to any one of 
claims 7 to 10, wherein the first and second appa- 
ratuses are answer and call modems respectively. 

•« 12. A communication system according to any one of 
claims 7 to 11, wherein the first apparatus further 
includes means for responding to the absence of 
detection of the first indication (32) within the nego- 
tiations by permitting the second apparatus to gain 

so access only to non-restricted data when data trans- 
mission (2) starts after the negotiations (1) have 
been completed. 



55 Patentanspruche 

1. Verfahren, welches eine rste Vorrichtung in di 
Lage versetzt festzulegen, ob eine zweite Vorrich- 
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tung Zugriff zu Daten mit Zugriffsbeschrankung 
haben soil Oder nicht, wobei das Verfahren die 
Schritte aufweist: 

daB die ersten und zweiten Vorrichtungen 
gemeinsame Abstimmungen (1 ) durchfuhren. 
um die technische Kompatibilitat fur die fol- 
gende Datenubertragung (2) zwischen ihnen 
sicherzustellen, 

dadureh gekennzeichnet, daB das Verfahren 
weiterhin die Schritte aufweist, daB 
die erste Vorrichtung die Abstimmungen (1) 
uberwacht um zu erfassen, ob es innerhalb der 
Abstimmungen eine erste Anzeige (32) gibt, 
welches von der zweiten Vorrichtung herruhrt 
und welches die erste Vorrichtung als Anzeige 
dafur erkennt, daB die zweite Vorrichtung 
berechtigt ist, auf die Oaten mit Zugangsbe- 
schrankung zuzugreifen, und 
die erste Vorrichtung, falls sie das erste 
Anzeige (32) erfaBt, dadureh reagiert, daB sie 
der zweiten Vorrichtung den Zugang zu den 
Daten mit Zugangsbeschrankung gewahrt, 
wenn die Datenubertragung (2) beginnt, nach- 
dem die Abstimmungen (1) abgeschlossen 
sind. 

2. Verfahren nach Anspruch 1 , welches weiterhin die 
Schritte aufweist, daB 

die erste Vorrichtung eine zweite Anzeige (31) 
in die Abstimmungen (1 ) einschlieBt, 
die zweite Vorrichtung die Abstimmungen (1) 
uberwacht, um testzustellen, ob innerhalb der 
Abstimmungen die zweite Anzeige (31) vor- 
liegt, und 

die zweite Vorrichtung die erste Anzeige (32) in 
die Abstimmungen nur dann einschlieBt, wenn 
die zweite Vorrichtung schon die zweite 
Anzeige (31) erfaBt hat. 

3. Verfahren nach Anspruch 1 oder 2, welches weiter- 
hin den Schritt einschlieBt, daB die zweite Vorrich- 
tung eine dritte Anzeige in die Abstimmungen (1) 
einschlieBt, nachdem sie die erste Anzeige (32) in 
die Abstimmungen eingeschlossen hat. 

4. Verfahren nach Anspruch 3, wobei die erste 
Anzeige (32) die zweite Vorrichtung als zughorig zu 
einer Gruppe von Vorrichtungen indentifiziert, wel- 
che eine Zugangsberechtigung zu den Daten mit 
Zugangsbeschrankung haben und daB die dritte 
Anzeige die zweite Vorrichtung genauer kennzeich- 
net als die erste Anzeige. 

5. Verfahren nach einem der Anspruch Ibis 4, wobei 
die rsten und zweiten Vorrichtungen Antwort- bzw. 
Rufmodems sind. 



6. Verfahren nach einem der Anspruche 1 bis 5, wobei 
die rste Vorrichtung, falls sie di erst Anzeige (32) 
inn rhalb d r Abstimmungen nicht erfaBt, dadureh 
r agiert, daB sie d rzw iten Vorrichtung den Zugriff 

5 nur auf nicht beschrankte Dat ng wahrt, wenn die 
Datenubertragung (2) beginnt, nachdem die 
Abstimmungen (1) abgeschlossen worden sind. 

7. Kommunikationssytem mit: 

einer ersten Vorrichtung fur die Kontrolle uber 
den Zugriff auf Daten mit Zugangsbeschran- 
kung und mit einer zweiten Vorrichtung, 
wobei die ersten und zweiten Vorrichtungen 

'5 jeweils Einrichtungen aufweisen fur das Durch- 

fuhren gemeinsamer Abstimmungen (1), um 
die technische Kompatibilitat zwischen den 
ersten und zweiten Vorrichtungen fur die 
anschlieBende Datenubertragung (2) sicherzu- 

20 stellen, 

dadureh gekennzeichnet, daB 
die zweite Vorrichtung weiterhin Einrichtungen 
aufweist, um in die Abstimmungen (1) eine 
erste Anzeige (32) einzuschlieBen, welche 

25 anzeigt, daB die zweite Vorrichtung berechtigt 

ist, auf die mit Zugangsbeschrankung versehe- 
nen Daten zuzugreifen, und 
daB die erste Vorrichtung weiterhin Einrichtun- 
gen aufweist, um die Abstimmungen (1) zu 

30 uberwachen, um die erste Anzeige (32) zu 

erfassen sowie Einrichtungen aufweist, um auf 
die Erfassung der ersten Anzeige (32) dadureh 
zu reagieren, daB sie der zweiten Vorrichtung 
den Zugriff auf die Daten mit Zugangsbe- 

35 schrankung gewahrt, wenn die Datenubertra- 

gung (2) beginnt, nachdem die Abstimmungen 
(1 ) vollendet worden sind. 

8. Kommunikationssystem nach Anspruch 7, wobei 
<o die erste Vorrichtung weiterhin Einrichtungen auf- 
weist, um in die Abstimmungen (1) eine zweite 
Anzeige (31) einzuschlieBen, und wobei die zweite 
Vorrichtung weiterhin Einrichtungen aufweist, um 
die Abstimmungen (1) zu uberwachen, um die 

45 zweite Anzeige (31 ) zu erfassen, sowie Einrichtun- 
gen aufweist, umdie die erste Anzeige enthaltende 
Einrichtung unter Ansprechen auf das Erfassen der 
zweiten Anzeige (31 ) zu aktivieren. 

50 9. Kommunikationssystem nach Anspruch 7 oder 8, 
wobei die zweite Vorrichtung weiterhin Einrichtun- 
gen aufweist, um in die Abstimmungen (1) eine 
dritte Anzeige nach der ersten Anzeige (32) einzu- 
schlieBen. 

55 

10. Kommunikationssystem nach Anspruch 9, wob i 
die Einrichtung, welche die erste Anzeige ein- 
schlieBt und die Einrichtung, w Iche die dritte 
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Anzeige einschlieSt, darart ausgelagt sind, daB die 
erste Anz ige (32) die zw ite vorrichtung als zu 
einer Gruppe von Vorrichtungen zugehorig identifi- 
ziert, die eine Zugangsb rechtigung zu den Oaten 
mit Zugangsbeschrankung haben und die dritt 
Anzeige die zweite Vorrichtung genauer als die 
erste Anzeige identifiziert. 

11. Kommunikationssystem nach einem der Anspru- 
che 7 bis 10, wobei die ersten und zweiten Vorrich- 
tungen Antwort- bzw. Rufmodems sind. 

12. Kommunikaationssystem nach einem der Anspru- 
che 7 bis 11, wobei die erste Vorrichtung weitemin 
eine Einrichtung fur das Reagieren auf das Ausblei- 
ben des Erfassens der ersten Anzeige (32) wah- 
rend der Abstimmungen aufweist, indem sie der 
zweiten Vorrichtung den Zugriff nur auf nicht 
beschrankte Daten gewahrt, wenn die Datenuber- 
tragung (2) nach dem AbschluB der Abstimmungen 
(1)beginnt. 



Revendications 

1 . Precede pour mettre en etat un premier appareil de 
determiner si oui ou non un second appareil devrait 
avoir I'acces autorise a des donnees a acces res- 
treint, le precede comprenant les operations ou : 

les premier et second appareils eftectuent des 
negociations (1) bilaterales pour assurer une 
compatibilite technique pour la transmission (2) 
de donnees subsequentes entre eux ; 
caracterise en ce que le precede comprend en 
plus les operations ou : 

le premier appareil contrdle les negociations (1 ) 
pour detecter si , dans les negociations, il y a 
une premiere indication (32) provenant du 
second appareil que le premier appareil recon- 
nait comme indiquant que le second appareil 
est autorise a acceder aux donnees a acces 
restreint ; et 

le premier appareil repond ,si il detecte la pre- 
miere indication (32), en permettant au second 
appareil d'avoir acces aux donnees a acces 
restreint lorsque la transmission de donnees 
(2) commence apres que les negociations (1) 
aient ete achevees. 

2. Precede selon la revendication 1 , comprenant en 
outre les operations oil : 

le premier appareil inclut une seconds indica- 
tion (31 ) dans les negociations (1 ) ; 
le second appareil contrdle les negociations (1 ) 
pour detecter si, dans les negociations, il y a la 
s conde indication (31 ), t 



le second appareil inclut la premiere indication 
(32) dans les negociations seulement si le 
deuxieme appareil a deja detecte la seconds 
indication (31) . 

5 

3. Precede selon la revendication 1 ou la revendica- 
tion 2, comprenant en plus ("operation ou le 
deuxieme appareil inclut une troisieme indication 
dans les negociations (1 ) apres qu'il ait inclus la pre- 

»o miere indication (32) dans les negociations. 

4. Precede selon la revendication 3, dans lequel la 
premiere indication (32) identif ie le deuxieme appa- 
reil comme appartenant a un groupe d'appareils qui 

»s sont autorises a acceder a des donnees a acces 
restreint et la troisieme indication identifie le second 
appareil plus precisement que la premiere indica- 
tion. 

SO 5. Precede selon I'une quelconque des revendications 
1 a 4, dans lequel les premier et second appareils 
sont des modems respectivement de reponse et 
d'appel . 



zs 6. Precede selon I'une quelconque des revendications 
1 a S, dans lequel le premier appareil repond, si il 
ne detecte pas la premiere indication (32) dans les 
negociations, en permettant au second appareil 
d'avoir seulement acces a des donnees a acces 

30 libre lorsque la transmission de donnees (2) com- 
mence apres que les negociations (1) aient ete 
achevees. 

7. Systeme de communication comprenant : 

35 

un premier appareil pour commander I'acces a 
des donnees a acces restreint, et un second 
appareil ; 

les premier et second appareils comprennent 
40 des moyens respectils pour accomplir des 

negociations bilaterales (1) pour assurer une 
compatibilite technique pour une transmission 
(2) de donnees subsequentes entre les premier 
et second appareils; 
45 caracterise en ce que : 

le second appareil comprend en outre un 
moyen pour inclure dans les negociations (1 ) 
une premiere indication (32) indiquant que le 
second appareil est autorise a acceder aux 
50 donnees a acces restreint, et 

le premier appareil comprend en plus un moyen 
pour contrdler les negociations (1) afin de 
detecter la premiere indication (32) et un 
moyen pour repondre a la detection de la pre- 
ss miere indication (32) en permettant au second 
appareil d'avoir acces a des donnees a acces 
restreint lorsque la transmission de donnees 
(2) commence apres que les negociations (1) 



7 



13 



EP 0 494 907 B1 



aient ete achevees 

8. Systeme de communication s Ion la r v ndication 
7. dans lequel le premier appar il compr nd n 

utre un moyen pour inclur dans les negociations s 
(1) una seconde indication (31). et le deuxieme 
appareil comprend en plus un moyen pour contrdler 
les negociations (1 ) afin de detecter la seconde indi- 
cation (31) et un moyen pour activer le moyen 
d'inclusion de la premiere indication en reponse a 
la detection de la seconde indication (31 ). 

9. Systeme de communication seton la revendication 
7 ou la revendication 8, dans lequel le second appa- 
reil comprend un moyen pour inclure dans les nego- '* 

* ciations (1 ) une troisieme indication apres la pre- 
miere indication (32). 

10. Systeme de communication selon la revendication 

9, dans lequel le moyen d'inclusion de la premiere 20 
indication et le moyen d'inclusion de la troisieme 
indication sont disposes de maniere a ce que la pre- 
miere indication (32) identifie le second appareil 
comme appartenant a un groupe d'appareils qui 
sont autorises a acceder a des donnees a acces 25 
restreint et la troisieme indication identifie le second 
appareil plus precisement que la premiere indica- 
tion. 

11. Systeme de communication seton Pune quelconque 30 
des revendications 7 a 10. dans lequel les premier 

et second appareils sont des modems respective- 
ment de reponse et d'appel. 

12. Systeme de communication selon Tune quelconque 35 
des revendications 7 a 11, dans lequel le premier 
appareil comprend en outre une moyen pour repon- 
dre a I'absence de detection de la premiere indica- 
tion (32) pendant les negociations en permettant au 
second appareil d'avoir seulement acces a des don- *o 
nees a acces libre lorsque la transmission (2) de 
donnees commence apres que les negociations (1 ) 
aient ete achevees. 
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